CVE-2024-27350

Summary: Amazon Fire OS versions 7.x and 8.x suffer a local ADB exposure that allows Fire TV apps to establish local ADB connections. This requires enabling the non-default ADB Debugging option and approving the connection prompt. Affected versions: Fire OS 7.0.0–7.6.6.8 (fixed in 7.6.6.9 or late...

CVE-2023-1383

CVE-2023-1383 involves an improper enforcement of a behavioral workflow in the exchangeDeviceServices function of the amzn.dmgr service. Public documents specify affected devices: Amazon Fire TV Stick (3rd gen) before 6.2.9.5 and Insignia TV with FireOS before 7.6.3.3. The vulnerability enables a...

CVE-2019-7399

Vulnerability summary (CVE-2019-7399) : FireOS up to version 5.3.6.3/4 contains a root-cause in the Settings/Terms of Use and Privacy pages where content is loaded without HTTPS. This allows a network-based attacker to perform a man-in-the-middle (MITM) attack to inject malicious content or exfil...

CVE-2015-7292

The CVE-2015-7292 entry describes a stack-based buffer overflow in the havok_write function of drivers/staging/havok/havok.c in Amazon Fire OS prior to 2016-01-15. A long string directed to /dev/hv can cause a denial of service (panic) and may have unspecified other impact. The vulnerability affe...

CVE-2018-11023

The CVE-2018-11023 entry concerns the Amazon Kindle Fire HD (3rd generation) running Fire OS 4.5.5.3. The kernel component kernel/omap/drivers/misc/gcx/gcioctl/gcif.c is vulnerable to kernel crashes when an attacker crafts an argument for an ioctl call on /dev/gcioctl using the command 3222560159...

CVE-2018-11019

CVV-2018-11019 affects the kernel component in Amazon Kindle Fire HD(3rd) running Fire OS 4.5.5.3. The issue is in kernel/omap/drivers/misc/gcx/gcioctl/gcif.c and allows an attacker to inject a crafted argument via an ioctl on device /dev/gcioctl using command 3221773726, causing a kernel crash. ...

CVE-2018-11021

CVE-2018-11021 affects the Kindle Fire HD(3rd) Fire OS 4.5.5.3 kernel component at kernel/omap/drivers/video/omap2/dsscomp/device.c. An attacker can pass a crafted argument to an ioctl on /dev/dsscomp using command 1118064517, causing a kernel crash. Exploitation details or active remediation are...

CVE-2018-11025

CVE-2018-11025 affects the kernel component used in Amazon Kindle Fire HD (3rd gen) running Fire OS 4.5.5.3. The flaw is in kernel/omap/drivers/mfd/twl6030-gpadc.c where an attacker can craft arguments for an ioctl on /dev/twl6030-gpadc with command 24832 to trigger a kernel crash. Documents prov...

CVE-2023-1384

The CVE-2023-1384 issue affects Amazon Fire TV Stick 3rd-gen devices (pre-6.2.9.5) and Insignia FireOS TVs (pre-7.6.3.3). The root cause is improper sanitization of the source parameter in the setMediaSource function of the amzn.thin.pl service, which can allow arbitrary JavaScript execution. Rem...

CVE-2023-1385

CVE-2023-1385 describes an improper JPAKE implementation that allows offline PIN brute-forcing due to initializing random values to a known value, enabling unauthorized authentication to amzn.lightning services. Affected: Amazon Fire TV Stick 3rd gen before 6.2.9.5 and Insignia TV with FireOS 7.6...

CVE-2018-11024

CVE-2018-11024 affects the kernel component in Amazon Kindle Fire HD (3rd gen) running Fire OS 4.5.5.3. The vulnerable code resides in kernel/omap/drivers/misc/gcx/gcioctl/gcif.c. An attacker can pass a crafted argument to an ioctl on /dev/gcioctl with command 1077435789, which can trigger a kern...

CVE-2018-11020

The CVE-2018-11020 issue affects Amazon Kindle Fire HD (3rd gen) running Fire OS 4.5.5.3. The kernel component kernel/omap/drivers/rpmsg/rpmsg_omx.c is vulnerable to a crafted ioctl argument on /dev/rpmsg-omx1 using command 3221772291, which can trigger a kernel crash. Documents consistently iden...

CVE-2018-11022

Vulnerability summary: The issue is in kernel/omap/drivers/misc/gcx/gcioctl/gcif.c within the Amazon Kindle Fire HD (3rd) Fire OS 4.5.5.3 kernel. An attacker can inject a crafted argument through an ioctl on device /dev/gcioctl using the command 3224132973, leading to a kernel crash. The connecte...